The PKC-only application security model ...
Nicolas Williams
Nicolas.Williams at sun.com
Wed Jul 23 21:37:36 EDT 2008
On Wed, Jul 23, 2008 at 05:32:02PM -0500, Thierry Moreau wrote:
> The document I published on my web site today is focused on fielding
> certificateless public operations with the TLS protocol which does not
> support client public keys without certificates - hence the meaningless
> security certificate. Nothing fancy in this technique, just a small
> contribution with the hope to facilitate the use of client-side PKC.
Advice on how to generate self-signed certs for this purpose would be
good for an FYI, or even a BCP. I don't think we need extensions to any
protocols that support PKI to support bare PK (though some protocols
have both, e.g., IKE).
Nico
--
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list